As the world becomes more dependent, and some might say blindly so, on digital certificates itís only natural that attackers will seek to circumvent this trust.
Google has fixed a security issue that made some of the files stored on Google Drive and shared with friends or colleagues via a direct link potentially reachable by unauthorized third parties, and calls users to remove previously shared documents.
An unusual instance of a cloned banking app has been spotted on Google Play by Lookout researchers: the app steals only the users' ID, and leaves alone the password.
Google has announced another OpenSSL fork. Dubbed BoringSSL, it will, in time, replace the OpenSSL library in various Google's projects.
A team of researchers from Columbia University has downloaded and decompiled over 880,000 applications found on Google Play, and has discovered - among other things - that app developers often embed their secret authentication keys in the apps, which can lead to attackers stealing server resources or user data available through services such as Amazon Web Services or Facebook.